@panguard-ai/core 0.1.0

package/dist/ai/ollama-provider.d.ts

@@ -0,0 +1,73 @@
+/**
+ * Ollama LLM provider implementation
+ * Ollama LLM 供應商實作
+ *
+ * Communicates with a local Ollama instance via its HTTP API.
+ * Uses native fetch (Node 18+) with no external dependencies.
+ * 透過 HTTP API 與本地 Ollama 實例通訊。
+ * 使用原生 fetch（Node 18+），無需外部相依。
+ *
+ * @module @panguard-ai/core/ai/ollama-provider
+ */
+import type { LLMConfig } from './types.js';
+import { LLMProviderBase } from './provider-base.js';
+/**
+ * Ollama LLM provider using the local HTTP API
+ * 使用本地 HTTP API 的 Ollama LLM 供應商
+ *
+ * Connects to a running Ollama instance (default: localhost:11434)
+ * and uses the /api/generate endpoint for text generation.
+ * 連接到正在執行的 Ollama 實例（預設：localhost:11434），
+ * 並使用 /api/generate 端點進行文字生成。
+ */
+export declare class OllamaProvider extends LLMProviderBase {
+    /** Resolved API endpoint / 解析後的 API 端點 */
+    private readonly endpoint;
+    /**
+     * Create a new OllamaProvider instance
+     * 建立新的 OllamaProvider 實例
+     *
+     * @param config - LLM configuration / LLM 配置
+     */
+    constructor(config: LLMConfig);
+    /**
+     * Check if the Ollama instance is reachable and running
+     * 檢查 Ollama 實例是否可連接且正在執行
+     *
+     * Sends a GET request to /api/tags to verify connectivity.
+     * 發送 GET 請求到 /api/tags 以驗證連接性。
+     *
+     * @returns True if Ollama is reachable / Ollama 可連接時回傳 true
+     */
+    isAvailable(): Promise<boolean>;
+    /**
+     * Check if the configured model has been pulled in Ollama
+     * 檢查配置的模型是否已在 Ollama 中下載
+     *
+     * @returns True if model is available locally / 模型在本地可用時回傳 true
+     */
+    isModelPulled(): Promise<boolean>;
+    /**
+     * Send a prompt to the Ollama /api/generate endpoint
+     * 向 Ollama /api/generate 端點發送提示詞
+     *
+     * @param prompt - The prompt to send / 要發送的提示詞
+     * @returns Raw response text / 原始回應文字
+     * @throws Error if the request fails or times out / 請求失敗或逾時時拋出錯誤
+     */
+    protected sendRequest(prompt: string): Promise<string>;
+    /**
+     * Rough token count estimation (for when Ollama doesn't report counts)
+     * 粗略的 Token 計數估算（當 Ollama 不報告計數時使用）
+     *
+     * Uses a simple heuristic: ~4 characters per token for English,
+     * ~2 characters per token for CJK text.
+     * 使用簡單啟發式方法：英文約每 4 個字元一個 Token，CJK 文字約每 2 個字元一個 Token。
+     *
+     * @param text - Text to estimate / 要估算的文字
+     * @returns Estimated token count / 估算的 Token 數量
+     * @internal
+     */
+    private estimateTokens;
+}
+//# sourceMappingURL=ollama-provider.d.ts.map

package/dist/ai/ollama-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ollama-provider.d.ts","sourceRoot":"","sources":["../../src/ai/ollama-provider.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAgCrD;;;;;;;;GAQG;AACH,qBAAa,cAAe,SAAQ,eAAe;IACjD,0CAA0C;IAC1C,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAElC;;;;;OAKG;gBACS,MAAM,EAAE,SAAS;IAS7B;;;;;;;;OAQG;IACG,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC;IA8CrC;;;;;OAKG;IACG,aAAa,IAAI,OAAO,CAAC,OAAO,CAAC;IAqBvC;;;;;;;OAOG;cACa,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAqE5D;;;;;;;;;;;OAWG;IACH,OAAO,CAAC,cAAc;CAOvB"}

package/dist/ai/ollama-provider.js

@@ -0,0 +1,200 @@
+/**
+ * Ollama LLM provider implementation
+ * Ollama LLM 供應商實作
+ *
+ * Communicates with a local Ollama instance via its HTTP API.
+ * Uses native fetch (Node 18+) with no external dependencies.
+ * 透過 HTTP API 與本地 Ollama 實例通訊。
+ * 使用原生 fetch（Node 18+），無需外部相依。
+ *
+ * @module @panguard-ai/core/ai/ollama-provider
+ */
+import { LLMProviderBase } from './provider-base.js';
+/**
+ * Default Ollama API endpoint
+ * 預設 Ollama API 端點
+ * @internal
+ */
+const DEFAULT_ENDPOINT = 'http://localhost:11434';
+/**
+ * Ollama LLM provider using the local HTTP API
+ * 使用本地 HTTP API 的 Ollama LLM 供應商
+ *
+ * Connects to a running Ollama instance (default: localhost:11434)
+ * and uses the /api/generate endpoint for text generation.
+ * 連接到正在執行的 Ollama 實例（預設：localhost:11434），
+ * 並使用 /api/generate 端點進行文字生成。
+ */
+export class OllamaProvider extends LLMProviderBase {
+    /** Resolved API endpoint / 解析後的 API 端點 */
+    endpoint;
+    /**
+     * Create a new OllamaProvider instance
+     * 建立新的 OllamaProvider 實例
+     *
+     * @param config - LLM configuration / LLM 配置
+     */
+    constructor(config) {
+        super(config);
+        this.endpoint = (config.endpoint ?? DEFAULT_ENDPOINT).replace(/\/+$/, '');
+        this.logger.info('Ollama provider initialized', {
+            endpoint: this.endpoint,
+            model: this.model,
+        });
+    }
+    /**
+     * Check if the Ollama instance is reachable and running
+     * 檢查 Ollama 實例是否可連接且正在執行
+     *
+     * Sends a GET request to /api/tags to verify connectivity.
+     * 發送 GET 請求到 /api/tags 以驗證連接性。
+     *
+     * @returns True if Ollama is reachable / Ollama 可連接時回傳 true
+     */
+    async isAvailable() {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => controller.abort(), 5_000);
+            const response = await fetch(`${this.endpoint}/api/tags`, {
+                method: 'GET',
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            if (!response.ok) {
+                this.logger.warn('Ollama returned non-OK status', {
+                    status: response.status,
+                });
+                return false;
+            }
+            const data = (await response.json());
+            const models = data.models?.map((m) => m.name) ?? [];
+            // Check if the configured model is pulled
+            // 檢查配置的模型是否已下載
+            const modelPulled = models.some((m) => m === this.model || m.startsWith(`${this.model}:`));
+            if (!modelPulled && models.length > 0) {
+                this.logger.warn('Configured model not found in Ollama', {
+                    requestedModel: this.model,
+                    availableModels: models,
+                    hint: `Run: ollama pull ${this.model}`,
+                });
+            }
+            this.logger.debug('Ollama available', {
+                availableModels: models.length,
+                modelPulled,
+            });
+            return true;
+        }
+        catch (error) {
+            this.logger.debug('Ollama not available', {
+                error: error instanceof Error ? error.message : String(error),
+            });
+            return false;
+        }
+    }
+    /**
+     * Check if the configured model has been pulled in Ollama
+     * 檢查配置的模型是否已在 Ollama 中下載
+     *
+     * @returns True if model is available locally / 模型在本地可用時回傳 true
+     */
+    async isModelPulled() {
+        try {
+            const controller = new AbortController();
+            const timeoutId = setTimeout(() => controller.abort(), 5_000);
+            const response = await fetch(`${this.endpoint}/api/tags`, {
+                method: 'GET',
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            if (!response.ok)
+                return false;
+            const data = (await response.json());
+            const models = data.models?.map((m) => m.name) ?? [];
+            return models.some((m) => m === this.model || m.startsWith(`${this.model}:`));
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * Send a prompt to the Ollama /api/generate endpoint
+     * 向 Ollama /api/generate 端點發送提示詞
+     *
+     * @param prompt - The prompt to send / 要發送的提示詞
+     * @returns Raw response text / 原始回應文字
+     * @throws Error if the request fails or times out / 請求失敗或逾時時拋出錯誤
+     */
+    async sendRequest(prompt) {
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), this.config.timeout);
+        try {
+            const response = await fetch(`${this.endpoint}/api/generate`, {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({
+                    model: this.model,
+                    prompt,
+                    stream: false,
+                    options: {
+                        temperature: this.config.temperature,
+                        num_predict: this.config.maxTokens,
+                    },
+                }),
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            if (!response.ok) {
+                const errorText = await response.text().catch(() => 'Unknown error');
+                throw new Error(`Ollama API error (${response.status}): ${errorText}`);
+            }
+            const data = (await response.json());
+            // Track token usage from Ollama response metrics
+            // 從 Ollama 回應指標追蹤 Token 使用量
+            const promptTokens = data.prompt_eval_count ?? this.estimateTokens(prompt);
+            const completionTokens = data.eval_count ?? this.estimateTokens(data.response);
+            this.tokenTracker.track(promptTokens, completionTokens);
+            this.logger.debug('Ollama request completed', {
+                model: data.model,
+                done: data.done,
+                promptTokens,
+                completionTokens,
+            });
+            return data.response;
+        }
+        catch (error) {
+            clearTimeout(timeoutId);
+            if (error instanceof Error && error.name === 'AbortError') {
+                throw new Error(`Ollama request timed out after ${this.config.timeout}ms. ` +
+                    `Ensure Ollama is running at ${this.endpoint} and the model "${this.model}" is available.`);
+            }
+            // Handle connection refused specifically
+            // 特別處理連線被拒絕的情況
+            if (error instanceof TypeError &&
+                (error.message.includes('fetch failed') || error.message.includes('ECONNREFUSED'))) {
+                throw new Error(`Cannot connect to Ollama at ${this.endpoint}. ` +
+                    `Ensure Ollama is installed and running: https://ollama.ai`);
+            }
+            throw error;
+        }
+    }
+    /**
+     * Rough token count estimation (for when Ollama doesn't report counts)
+     * 粗略的 Token 計數估算（當 Ollama 不報告計數時使用）
+     *
+     * Uses a simple heuristic: ~4 characters per token for English,
+     * ~2 characters per token for CJK text.
+     * 使用簡單啟發式方法：英文約每 4 個字元一個 Token，CJK 文字約每 2 個字元一個 Token。
+     *
+     * @param text - Text to estimate / 要估算的文字
+     * @returns Estimated token count / 估算的 Token 數量
+     * @internal
+     */
+    estimateTokens(text) {
+        // Count CJK characters
+        // 計算 CJK 字元數
+        const cjkCount = (text.match(/[\u4e00-\u9fff\u3400-\u4dbf]/g) ?? []).length;
+        const nonCjkLength = text.length - cjkCount;
+        return Math.ceil(nonCjkLength / 4) + Math.ceil(cjkCount / 1.5);
+    }
+}
+//# sourceMappingURL=ollama-provider.js.map

package/dist/ai/ollama-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ollama-provider.js","sourceRoot":"","sources":["../../src/ai/ollama-provider.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAGH,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAErD;;;;GAIG;AACH,MAAM,gBAAgB,GAAG,wBAAwB,CAAC;AAyBlD;;;;;;;;GAQG;AACH,MAAM,OAAO,cAAe,SAAQ,eAAe;IACjD,0CAA0C;IACzB,QAAQ,CAAS;IAElC;;;;;OAKG;IACH,YAAY,MAAiB;QAC3B,KAAK,CAAC,MAAM,CAAC,CAAC;QACd,IAAI,CAAC,QAAQ,GAAG,CAAC,MAAM,CAAC,QAAQ,IAAI,gBAAgB,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QAC1E,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE;YAC9C,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,KAAK,EAAE,IAAI,CAAC,KAAK;SAClB,CAAC,CAAC;IACL,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,WAAW;QACf,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAE9D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,QAAQ,WAAW,EAAE;gBACxD,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YACH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE;oBAChD,MAAM,EAAE,QAAQ,CAAC,MAAM;iBACxB,CAAC,CAAC;gBACH,OAAO,KAAK,CAAC;YACf,CAAC;YAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAuB,CAAC;YAC3D,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAErD,0CAA0C;YAC1C,eAAe;YACf,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;YAE3F,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACtC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,sCAAsC,EAAE;oBACvD,cAAc,EAAE,IAAI,CAAC,KAAK;oBAC1B,eAAe,EAAE,MAAM;oBACvB,IAAI,EAAE,oBAAoB,IAAI,CAAC,KAAK,EAAE;iBACvC,CAAC,CAAC;YACL,CAAC;YAED,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,kBAAkB,EAAE;gBACpC,eAAe,EAAE,MAAM,CAAC,MAAM;gBAC9B,WAAW;aACZ,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE;gBACxC,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC,CAAC;YACH,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAE9D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,QAAQ,WAAW,EAAE;gBACxD,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YACH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,CAAC,QAAQ,CAAC,EAAE;gBAAE,OAAO,KAAK,CAAC;YAE/B,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAuB,CAAC;YAC3D,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YACrD,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;QAChF,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;;;;OAOG;IACO,KAAK,CAAC,WAAW,CAAC,MAAc;QACxC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAE5E,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,QAAQ,eAAe,EAAE;gBAC5D,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,MAAM;oBACN,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE;wBACP,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW;wBACpC,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS;qBACnC;iBACF,CAAC;gBACF,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,eAAe,CAAC,CAAC;gBACrE,MAAM,IAAI,KAAK,CAAC,qBAAqB,QAAQ,CAAC,MAAM,MAAM,SAAS,EAAE,CAAC,CAAC;YACzE,CAAC;YAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA2B,CAAC;YAE/D,iDAAiD;YACjD,4BAA4B;YAC5B,MAAM,YAAY,GAAG,IAAI,CAAC,iBAAiB,IAAI,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;YAC3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC/E,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,YAAY,EAAE,gBAAgB,CAAC,CAAC;YAExD,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;gBAC5C,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,YAAY;gBACZ,gBAAgB;aACjB,CAAC,CAAC;YAEH,OAAO,IAAI,CAAC,QAAQ,CAAC;QACvB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC1D,MAAM,IAAI,KAAK,CACb,kCAAkC,IAAI,CAAC,MAAM,CAAC,OAAO,MAAM;oBACzD,+BAA+B,IAAI,CAAC,QAAQ,mBAAmB,IAAI,CAAC,KAAK,iBAAiB,CAC7F,CAAC;YACJ,CAAC;YAED,yCAAyC;YACzC,eAAe;YACf,IACE,KAAK,YAAY,SAAS;gBAC1B,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,EAClF,CAAC;gBACD,MAAM,IAAI,KAAK,CACb,+BAA+B,IAAI,CAAC,QAAQ,IAAI;oBAC9C,2DAA2D,CAC9D,CAAC;YACJ,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACK,cAAc,CAAC,IAAY;QACjC,uBAAuB;QACvB,aAAa;QACb,MAAM,QAAQ,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,+BAA+B,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;QAC5E,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,GAAG,QAAQ,CAAC;QAC5C,OAAO,IAAI,CAAC,IAAI,CAAC,YAAY,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,GAAG,GAAG,CAAC,CAAC;IACjE,CAAC;CACF"}

package/dist/ai/openai-provider.d.ts

@@ -0,0 +1,70 @@
+/**
+ * OpenAI LLM provider implementation
+ * OpenAI LLM 供應商實作
+ *
+ * Uses the openai package via dynamic import to avoid hard dependencies.
+ * Users must install the SDK separately.
+ * 透過動態匯入使用 openai 套件以避免硬性相依。
+ * 使用者必須另外安裝 SDK。
+ *
+ * @module @panguard-ai/core/ai/openai-provider
+ */
+import type { LLMConfig } from './types.js';
+import { LLMProviderBase } from './provider-base.js';
+/**
+ * OpenAI LLM provider
+ * OpenAI LLM 供應商
+ *
+ * Requires the openai package to be installed separately.
+ * The SDK is loaded via dynamic import() on first use.
+ * 需要另外安裝 openai 套件。
+ * SDK 在首次使用時透過動態 import() 載入。
+ */
+export declare class OpenAIProvider extends LLMProviderBase {
+    /**
+     * Cached OpenAI client instance / 快取的 OpenAI 客戶端實例
+     * @internal
+     */
+    private client;
+    /**
+     * Create a new OpenAIProvider instance
+     * 建立新的 OpenAIProvider 實例
+     *
+     * @param config - LLM configuration (apiKey required) / LLM 配置（需要 apiKey）
+     */
+    constructor(config: LLMConfig);
+    /**
+     * Lazily initialize the OpenAI SDK client via dynamic import
+     * 透過動態匯入延遲初始化 OpenAI SDK 客戶端
+     *
+     * @returns Initialized OpenAI client / 初始化的 OpenAI 客戶端
+     * @throws Error if the SDK is not installed or API key is missing
+     *         如果 SDK 未安裝或 API 金鑰遺失則拋出錯誤
+     * @internal
+     */
+    private getClient;
+    /**
+     * Check if the OpenAI API is available and the API key is valid
+     * 檢查 OpenAI API 是否可用且 API 金鑰有效
+     *
+     * Attempts to create a minimal chat completion to verify connectivity.
+     * 嘗試建立最小聊天完成以驗證連接性。
+     *
+     * @returns True if OpenAI API is reachable / OpenAI API 可連接時回傳 true
+     */
+    isAvailable(): Promise<boolean>;
+    /**
+     * Send a prompt to the OpenAI Chat Completions API
+     * 向 OpenAI Chat Completions API 發送提示詞
+     *
+     * Uses a system message to establish the security analyst role,
+     * followed by the user prompt.
+     * 使用系統訊息建立安全分析師角色，接著是使用者提示詞。
+     *
+     * @param prompt - The prompt to send / 要發送的提示詞
+     * @returns Raw response text / 原始回應文字
+     * @throws Error if the API call fails / API 呼叫失敗時拋出錯誤
+     */
+    protected sendRequest(prompt: string): Promise<string>;
+}
+//# sourceMappingURL=openai-provider.d.ts.map

package/dist/ai/openai-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-provider.d.ts","sourceRoot":"","sources":["../../src/ai/openai-provider.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAyCrD;;;;;;;;GAQG;AACH,qBAAa,cAAe,SAAQ,eAAe;IACjD;;;OAGG;IACH,OAAO,CAAC,MAAM,CAA6B;IAE3C;;;;;OAKG;gBACS,MAAM,EAAE,SAAS;IAK7B;;;;;;;;OAQG;YACW,SAAS;IAiCvB;;;;;;;;OAQG;IACG,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC;IA4BrC;;;;;;;;;;;OAWG;cACa,WAAW,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;CA+D7D"}

package/dist/ai/openai-provider.js

@@ -0,0 +1,175 @@
+/**
+ * OpenAI LLM provider implementation
+ * OpenAI LLM 供應商實作
+ *
+ * Uses the openai package via dynamic import to avoid hard dependencies.
+ * Users must install the SDK separately.
+ * 透過動態匯入使用 openai 套件以避免硬性相依。
+ * 使用者必須另外安裝 SDK。
+ *
+ * @module @panguard-ai/core/ai/openai-provider
+ */
+import { LLMProviderBase } from './provider-base.js';
+/**
+ * OpenAI LLM provider
+ * OpenAI LLM 供應商
+ *
+ * Requires the openai package to be installed separately.
+ * The SDK is loaded via dynamic import() on first use.
+ * 需要另外安裝 openai 套件。
+ * SDK 在首次使用時透過動態 import() 載入。
+ */
+export class OpenAIProvider extends LLMProviderBase {
+    /**
+     * Cached OpenAI client instance / 快取的 OpenAI 客戶端實例
+     * @internal
+     */
+    client = null;
+    /**
+     * Create a new OpenAIProvider instance
+     * 建立新的 OpenAIProvider 實例
+     *
+     * @param config - LLM configuration (apiKey required) / LLM 配置（需要 apiKey）
+     */
+    constructor(config) {
+        super(config);
+        this.logger.info('OpenAI provider initialized', { model: this.model });
+    }
+    /**
+     * Lazily initialize the OpenAI SDK client via dynamic import
+     * 透過動態匯入延遲初始化 OpenAI SDK 客戶端
+     *
+     * @returns Initialized OpenAI client / 初始化的 OpenAI 客戶端
+     * @throws Error if the SDK is not installed or API key is missing
+     *         如果 SDK 未安裝或 API 金鑰遺失則拋出錯誤
+     * @internal
+     */
+    async getClient() {
+        if (this.client) {
+            return this.client;
+        }
+        if (!this.config.apiKey) {
+            throw new Error('OpenAI API key is required. Set the apiKey field in LLMConfig or the OPENAI_API_KEY environment variable.');
+        }
+        let OpenAI;
+        try {
+            // eslint-disable-next-line @typescript-eslint/no-require-imports
+            const module = await import('openai');
+            OpenAI = (module['default'] ?? module);
+        }
+        catch (error) {
+            const message = error instanceof Error && error.message.includes('Cannot find')
+                ? 'Install openai package to use OpenAI provider: npm install openai'
+                : `Failed to load openai package: ${error instanceof Error ? error.message : String(error)}. ` +
+                    'Install it with: npm install openai';
+            throw new Error(message);
+        }
+        this.client = new OpenAI({
+            apiKey: this.config.apiKey,
+            timeout: this.config.timeout,
+        });
+        return this.client;
+    }
+    /**
+     * Check if the OpenAI API is available and the API key is valid
+     * 檢查 OpenAI API 是否可用且 API 金鑰有效
+     *
+     * Attempts to create a minimal chat completion to verify connectivity.
+     * 嘗試建立最小聊天完成以驗證連接性。
+     *
+     * @returns True if OpenAI API is reachable / OpenAI API 可連接時回傳 true
+     */
+    async isAvailable() {
+        try {
+            if (!this.config.apiKey) {
+                this.logger.debug('OpenAI provider: no API key configured');
+                return false;
+            }
+            const client = await this.getClient();
+            // Send a minimal test request
+            // 發送最小測試請求
+            const response = await client.chat.completions.create({
+                model: this.model,
+                messages: [{ role: 'user', content: 'Reply with "ok".' }],
+                max_tokens: 10,
+            });
+            const isOk = response.choices.length > 0;
+            this.logger.debug('OpenAI availability check', { available: isOk });
+            return isOk;
+        }
+        catch (error) {
+            this.logger.debug('OpenAI not available', {
+                error: error instanceof Error ? error.message : String(error),
+            });
+            return false;
+        }
+    }
+    /**
+     * Send a prompt to the OpenAI Chat Completions API
+     * 向 OpenAI Chat Completions API 發送提示詞
+     *
+     * Uses a system message to establish the security analyst role,
+     * followed by the user prompt.
+     * 使用系統訊息建立安全分析師角色，接著是使用者提示詞。
+     *
+     * @param prompt - The prompt to send / 要發送的提示詞
+     * @returns Raw response text / 原始回應文字
+     * @throws Error if the API call fails / API 呼叫失敗時拋出錯誤
+     */
+    async sendRequest(prompt) {
+        const client = await this.getClient();
+        const systemMessage = this.config.lang === 'zh-TW'
+            ? '你是一位專業的資安分析師，專精於威脅偵測、事件分析和安全報告撰寫。請以繁體中文回應。'
+            : 'You are a professional cybersecurity analyst specializing in threat detection, incident analysis, and security report writing.';
+        try {
+            const response = await client.chat.completions.create({
+                model: this.model,
+                messages: [
+                    { role: 'system', content: systemMessage },
+                    { role: 'user', content: prompt },
+                ],
+                temperature: this.config.temperature,
+                max_tokens: this.config.maxTokens,
+            });
+            // Track token usage from API response
+            // 從 API 回應追蹤 Token 使用量
+            if (response.usage) {
+                this.tokenTracker.track(response.usage.prompt_tokens, response.usage.completion_tokens);
+            }
+            // Extract the assistant's message content
+            // 提取助手的訊息內容
+            const choice = response.choices[0];
+            const content = choice?.message?.content ?? '';
+            this.logger.debug('OpenAI request completed', {
+                model: this.model,
+                finishReason: choice?.finish_reason,
+                promptTokens: response.usage?.prompt_tokens,
+                completionTokens: response.usage?.completion_tokens,
+            });
+            if (!content) {
+                throw new Error('OpenAI returned an empty response');
+            }
+            return content;
+        }
+        catch (error) {
+            // Provide more specific error messages for common failures
+            // 為常見失敗提供更具體的錯誤訊息
+            if (error instanceof Error) {
+                if (error.message.includes('401') || error.message.includes('Incorrect API key')) {
+                    throw new Error('OpenAI API authentication failed. Check your API key.');
+                }
+                if (error.message.includes('429') || error.message.includes('Rate limit')) {
+                    throw new Error('OpenAI API rate limit exceeded. Please wait and try again.');
+                }
+                if (error.message.includes('timeout') || error.message.includes('ETIMEDOUT')) {
+                    throw new Error(`OpenAI API request timed out after ${this.config.timeout}ms.`);
+                }
+                if (error.message.includes('model_not_found') || error.message.includes('does not exist')) {
+                    throw new Error(`OpenAI model "${this.model}" not found. Check the model name.`);
+                }
+            }
+            throw error;
+        }
+    }
+}
+//# sourceMappingURL=openai-provider.js.map

package/dist/ai/openai-provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-provider.js","sourceRoot":"","sources":["../../src/ai/openai-provider.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAGH,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAyCrD;;;;;;;;GAQG;AACH,MAAM,OAAO,cAAe,SAAQ,eAAe;IACjD;;;OAGG;IACK,MAAM,GAAwB,IAAI,CAAC;IAE3C;;;;;OAKG;IACH,YAAY,MAAiB;QAC3B,KAAK,CAAC,MAAM,CAAC,CAAC;QACd,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;IACzE,CAAC;IAED;;;;;;;;OAQG;IACK,KAAK,CAAC,SAAS;QACrB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,OAAO,IAAI,CAAC,MAAM,CAAC;QACrB,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CACb,2GAA2G,CAC5G,CAAC;QACJ,CAAC;QAED,IAAI,MAAyB,CAAC;QAC9B,IAAI,CAAC;YACH,iEAAiE;YACjE,MAAM,MAAM,GAAG,MAAO,MAAM,CAAC,QAAkB,CAAsC,CAAC;YACtF,MAAM,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,MAAM,CAAiC,CAAC;QACzE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,OAAO,GACX,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC;gBAC7D,CAAC,CAAC,mEAAmE;gBACrE,CAAC,CAAC,kCAAkC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI;oBAC5F,qCAAqC,CAAC;YAC5C,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,CAAC;QAC3B,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC;YACvB,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;YAC1B,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;SAC7B,CAAC,CAAC;QAEH,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,WAAW;QACf,IAAI,CAAC;YACH,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;gBACxB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,wCAAwC,CAAC,CAAC;gBAC5D,OAAO,KAAK,CAAC;YACf,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;YAEtC,8BAA8B;YAC9B,WAAW;YACX,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC;gBACpD,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,kBAAkB,EAAE,CAAC;gBACzD,UAAU,EAAE,EAAE;aACf,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC;YACzC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YACpE,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE;gBACxC,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC,CAAC;YACH,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;;;;;;;;OAWG;IACO,KAAK,CAAC,WAAW,CAAC,MAAc;QACxC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QAEtC,MAAM,aAAa,GACjB,IAAI,CAAC,MAAM,CAAC,IAAI,KAAK,OAAO;YAC1B,CAAC,CAAC,4CAA4C;YAC9C,CAAC,CAAC,gIAAgI,CAAC;QAEvI,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC;gBACpD,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,QAAQ,EAAE;oBACR,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,aAAa,EAAE;oBAC1C,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE;iBAClC;gBACD,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW;gBACpC,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS;aAClC,CAAC,CAAC;YAEH,sCAAsC;YACtC,uBAAuB;YACvB,IAAI,QAAQ,CAAC,KAAK,EAAE,CAAC;gBACnB,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,aAAa,EAAE,QAAQ,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;YAC1F,CAAC;YAED,0CAA0C;YAC1C,YAAY;YACZ,MAAM,MAAM,GAAG,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YACnC,MAAM,OAAO,GAAG,MAAM,EAAE,OAAO,EAAE,OAAO,IAAI,EAAE,CAAC;YAE/C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;gBAC5C,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,YAAY,EAAE,MAAM,EAAE,aAAa;gBACnC,YAAY,EAAE,QAAQ,CAAC,KAAK,EAAE,aAAa;gBAC3C,gBAAgB,EAAE,QAAQ,CAAC,KAAK,EAAE,iBAAiB;aACpD,CAAC,CAAC;YAEH,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;YACvD,CAAC;YAED,OAAO,OAAO,CAAC;QACjB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,2DAA2D;YAC3D,kBAAkB;YAClB,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;gBAC3B,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;oBACjF,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;gBAC3E,CAAC;gBACD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;oBAC1E,MAAM,IAAI,KAAK,CAAC,4DAA4D,CAAC,CAAC;gBAChF,CAAC;gBACD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;oBAC7E,MAAM,IAAI,KAAK,CAAC,sCAAsC,IAAI,CAAC,MAAM,CAAC,OAAO,KAAK,CAAC,CAAC;gBAClF,CAAC;gBACD,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;oBAC1F,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,KAAK,oCAAoC,CAAC,CAAC;gBACnF,CAAC;YACH,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CACF"}

package/dist/ai/prompts/event-classifier.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Event classification prompt templates
+ * 事件分類提示詞範本
+ *
+ * Generates prompts for classifying security events using
+ * the MITRE ATT&CK framework. Supports bilingual output.
+ * 產生使用 MITRE ATT&CK 框架分類安全事件的提示詞。支援雙語輸出。
+ *
+ * @module @panguard-ai/core/ai/prompts/event-classifier
+ */
+import type { Language, SecurityEvent } from '../../types.js';
+/**
+ * Generate an event classification prompt for the given security event
+ * 為指定的安全事件產生事件分類提示詞
+ *
+ * The prompt instructs the LLM to classify the event according to
+ * MITRE ATT&CK framework and return structured JSON output.
+ * 提示詞指示 LLM 根據 MITRE ATT&CK 框架分類事件並回傳結構化 JSON 輸出。
+ *
+ * @param event - The security event to classify / 要分類的安全事件
+ * @param lang - Output language / 輸出語言
+ * @returns Formatted prompt string / 格式化的提示詞字串
+ */
+export declare function getEventClassifierPrompt(event: SecurityEvent, lang: Language): string;
+//# sourceMappingURL=event-classifier.d.ts.map

package/dist/ai/prompts/event-classifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"event-classifier.d.ts","sourceRoot":"","sources":["../../../src/ai/prompts/event-classifier.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAwB9D;;;;;;;;;;;GAWG;AACH,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,aAAa,EAAE,IAAI,EAAE,QAAQ,GAAG,MAAM,CAuDrF"}

package/dist/ai/prompts/event-classifier.js

@@ -0,0 +1,94 @@
+/**
+ * Event classification prompt templates
+ * 事件分類提示詞範本
+ *
+ * Generates prompts for classifying security events using
+ * the MITRE ATT&CK framework. Supports bilingual output.
+ * 產生使用 MITRE ATT&CK 框架分類安全事件的提示詞。支援雙語輸出。
+ *
+ * @module @panguard-ai/core/ai/prompts/event-classifier
+ */
+/**
+ * MITRE ATT&CK tactic categories for reference in prompts
+ * MITRE ATT&CK 戰術分類（供提示詞參考）
+ * @internal
+ */
+const MITRE_TACTICS = [
+    'Reconnaissance',
+    'Resource Development',
+    'Initial Access',
+    'Execution',
+    'Persistence',
+    'Privilege Escalation',
+    'Defense Evasion',
+    'Credential Access',
+    'Discovery',
+    'Lateral Movement',
+    'Collection',
+    'Command and Control',
+    'Exfiltration',
+    'Impact',
+];
+/**
+ * Generate an event classification prompt for the given security event
+ * 為指定的安全事件產生事件分類提示詞
+ *
+ * The prompt instructs the LLM to classify the event according to
+ * MITRE ATT&CK framework and return structured JSON output.
+ * 提示詞指示 LLM 根據 MITRE ATT&CK 框架分類事件並回傳結構化 JSON 輸出。
+ *
+ * @param event - The security event to classify / 要分類的安全事件
+ * @param lang - Output language / 輸出語言
+ * @returns Formatted prompt string / 格式化的提示詞字串
+ */
+export function getEventClassifierPrompt(event, lang) {
+    const eventData = JSON.stringify({
+        id: event.id,
+        timestamp: event.timestamp instanceof Date ? event.timestamp.toISOString() : event.timestamp,
+        source: event.source,
+        severity: event.severity,
+        category: event.category,
+        description: event.description,
+        host: event.host,
+        metadata: event.metadata,
+    }, null, 2);
+    if (lang === 'zh-TW') {
+        return `你是一位專業的資安分析師。請根據 MITRE ATT&CK 框架分析以下安全事件。
+
+安全事件資料：
+${eventData}
+
+可用的 MITRE ATT&CK 戰術分類：
+${MITRE_TACTICS.join(', ')}
+
+請以 JSON 格式回應，包含以下欄位：
+{
+  "category": "MITRE ATT&CK 戰術分類（從上方清單中選擇）",
+  "technique": "MITRE ATT&CK 技術 ID（例如 T1059、T1548）",
+  "severity": "嚴重等級：info、low、medium、high 或 critical",
+  "confidence": "信心分數，0 到 1 之間的數字",
+  "description": "此分類的簡短說明"
+}
+
+只回傳 JSON，不要包含其他文字。`;
+    }
+    return `You are a professional cybersecurity analyst. Analyze the following security event according to the MITRE ATT&CK framework.
+
+Security Event Data:
+${eventData}
+
+Available MITRE ATT&CK Tactic Categories:
+${MITRE_TACTICS.join(', ')}
+
+Respond in JSON format with the following fields:
+{
+  "category": "MITRE ATT&CK tactic category (choose from the list above)",
+  "technique": "MITRE ATT&CK technique ID (e.g., T1059, T1548)",
+  "severity": "severity level: info, low, medium, high, or critical",
+  "confidence": "confidence score, a number between 0 and 1",
+  "description": "brief explanation of this classification"
+}
+
+Return only JSON, no additional text.`;
+}
+//# sourceMappingURL=event-classifier.js.map